DocumentCode :
3372273
Title :
A Novel Outlier Detection Scheme for Network Intrusion Detection Systems
Author :
Prakobphol, Komsit ; Zhan, Justin
Author_Institution :
Carnegie Mellon CyLab, Kobe
fYear :
2008
fDate :
24-26 April 2008
Firstpage :
555
Lastpage :
560
Abstract :
Network intrusion detection system serves as a second line of defense to intrusion prevention. Anomaly detection approach is important in order to detect new attacks. Outlier detection scheme is one of the most successful anomaly detection approaches. In this paper, we propose a novel outlier detection scheme based on cost-distribution to detect anomaly behavior in network intrusion detection. We evaluate the capability of this new approach with the data set from KDD Cup 1999 data mining competition. The results indicate that the cost-distribution based scheme outperforms current outlier anomaly detection approaches in the capability to detect attacks and low false alarm rate.
Keywords :
computer network management; security of data; anomaly detection; intrusion prevention; network intrusion detection systems; outlier detection scheme; Data mining; Decision trees; Information security; Intrusion detection; Pattern analysis; Pattern recognition; Predictive models; Probability; Telecommunication traffic; Traffic control; anomaly detection; data mining; intrusion detection; outlier detection;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Information Security and Assurance, 2008. ISA 2008. International Conference on
Conference_Location :
Busan
Print_ISBN :
978-0-7695-3126-7
Type :
conf
DOI :
10.1109/ISA.2008.26
Filename :
4511627
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3372273
بازگشت